The pfBlockerNG package is great from blocking and managing traffic and allowed connect via the DNSBL Feeds & DNSBL EasyList when using DNSBL to Content, Ads or Internet Trackers you may find that some or all the systems still see the block content, this is normally because there are not using the pFsense built in DNS.
Setup rules to redirect all DNS request to the local DNS
- Firewall > NAT > Port Forward> Edit
- Interface LAN
- Protocal TCP/UDP
- Click Invert match select LAN Address
- Destination port range From Port DNS and to Port DNS
- Redirect target IP 127.0.0.1
- Redirect target port DNS
- Create Description
- NAT reflection Use system default
- Filter rule association Create new associated filter rule
- Create rule to allow TCP/UDP from LAN Net to LAN address on port 53
Hiightlighted in Yellow are the required fields for this rule.
